Remote Code Execution Vulnerability in Zoho ManageEngine O365 Manager Plus

Remote Code Execution Vulnerability in Zoho ManageEngine O365 Manager Plus

CVE-2021-44652 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Zoho ManageEngine O365 Manager Plus before Build 4416 allows remote code execution via BCP file overwrite through the ChangeDBAPI component.

Learn more about our Api Penetration Testing.